$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.cer File: CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.cer (raw, json) Hash identifier: ePC1Qn0U59zYe95UALhSHKybL5ZrZuejXLByHX0D9gA= Subject key identifier: CC:8A:B1:F3:D1:77:B7:71:E1:F7:0E:DD:E6:7F:26:E5:85:4C:07:08 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 02CF1939889480DF25746D234D2E8EA32ADF1F99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.mft caRepository: rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 04 Apr 2024 06:51:38 +0000 Certificate not after: Thu 03 Apr 2025 06:56:38 +0000 Subordinate resources: IP: 103.160.18.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:cf:19:39:88:94:80:df:25:74:6d:23:4d:2e:8e:a3:2a:df:1f:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 4 06:51:38 2024 GMT Not After : Apr 3 06:56:38 2025 GMT Subject: CN=CC8AB1F3D177B771E1F70EDDE67F26E5854C0708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a0:a2:3d:51:98:36:f5:bf:65:59:15:2a:47: b4:7b:f5:24:a3:5f:0d:71:d1:4d:a7:5f:c3:48:73: f2:2d:05:8c:2d:ca:ca:b4:39:d5:bf:4c:37:e1:09: b4:88:a0:b3:dc:4f:57:3a:86:fa:23:3c:dc:0f:bb: 7e:cc:d2:1e:56:24:0d:5e:4e:a6:52:eb:38:5e:dd: 42:98:c2:fa:d1:a9:18:98:c1:11:a2:fc:a1:53:9d: 38:8c:a3:13:18:17:b1:ca:23:05:d6:da:db:e5:35: 05:b2:67:95:df:a0:54:a3:e3:89:01:c1:21:31:b5: a6:4f:1c:ca:08:cd:b3:78:ff:a5:a1:a8:78:16:f6: fe:4c:59:0c:90:c6:a8:5f:b3:1a:00:34:b3:52:b7: 9d:2f:73:ad:9d:79:ce:80:9e:d7:fd:e7:7c:1d:f2: b9:43:b4:8d:da:46:b2:a0:62:c4:12:2d:71:53:b7: 2d:89:a2:44:e5:34:44:da:db:10:0d:7b:73:1f:97: 0e:2e:b4:a4:f8:e6:86:75:32:e7:af:b8:be:1c:f3: 85:d0:7a:c8:7a:2a:0c:b1:7c:40:49:21:b8:c0:d4: 07:77:12:03:ca:a0:dd:af:46:b7:a7:3e:7e:b0:84: b7:6a:f4:20:17:74:ce:0a:5d:db:6a:d3:db:24:49: 7a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CC:8A:B1:F3:D1:77:B7:71:E1:F7:0E:DD:E6:7F:26:E5:85:4C:07:08 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.18.0/23 Signature Algorithm: sha256WithRSAEncryption 10:7c:a9:14:2e:8b:bb:61:d5:d7:f3:d6:8f:94:fe:3c:3e:14: 97:62:8f:7a:ab:a6:21:e5:ed:9d:69:84:a1:ea:6c:d5:94:a9: 9e:39:45:ef:44:1e:d6:4e:09:23:a5:c5:e3:f3:e4:cd:7f:a0: 41:45:3b:10:a1:88:04:40:74:ff:f3:b1:5f:17:2e:ae:7f:01: db:c2:fc:16:3d:96:92:d7:4a:9a:1a:e2:0e:d7:62:bb:2f:a7: eb:83:7f:b1:15:6a:24:95:00:a0:7e:8a:e2:7d:a7:5e:bf:2e: 42:aa:46:d6:8a:bf:dc:6f:85:a8:d4:5b:50:b7:08:27:4a:95: fc:5b:5b:b8:8f:7b:f2:de:a8:9b:fa:db:2a:da:87:e3:e4:7b: f0:2e:06:c0:ba:80:aa:99:19:88:0c:7d:dc:f2:5e:8e:67:0f: c7:04:88:d6:9a:5e:53:10:f8:67:ce:58:72:75:e6:ec:ed:a0: 20:c1:22:84:15:4a:8e:2e:06:93:60:6e:14:bb:3a:6d:fc:62: 1b:32:8f:88:ec:89:93:ac:63:d6:9e:97:73:d4:83:02:d4:16: 1e:7b:65:e1:cc:e8:48:f4:c2:79:08:5b:7c:78:81:41:a9:a6: c9:c9:2a:e7:15:c3:50:aa:05:38:ef:9a:bb:eb:f9:04:0e:71: d2:7e:ab:17 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUAs8ZOYiUgN8ldG0jTS6OoyrfH5kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQwNDA2NTEzOFoX DTI1MDQwMzA2NTYzOFowMzExMC8GA1UEAxMoQ0M4QUIxRjNEMTc3Qjc3MUUxRjcw RURERTY3RjI2RTU4NTRDMDcwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMqgoj1RmDb1v2VZFSpHtHv1JKNfDXHRTadfw0hz8i0FjC3KyrQ51b9MN+EJ tIigs9xPVzqG+iM83A+7fszSHlYkDV5OplLrOF7dQpjC+tGpGJjBEaL8oVOdOIyj ExgXscojBdba2+U1BbJnld+gVKPjiQHBITG1pk8cygjNs3j/paGoeBb2/kxZDJDG qF+zGgA0s1K3nS9zrZ15zoCe1/3nfB3yuUO0jdpGsqBixBItcVO3LYmiROU0RNrb EA17cx+XDi60pPjmhnUy56+4vhzzhdB6yHoqDLF8QEkhuMDUB3cSA8qg3a9Gt6c+ frCEt2r0IBd0zgpd22rT2yRJei0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMyKsfPRd7dx4fcO3eZ/JuWFTAcIMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kZDc0M2M3Yy0wN2U2LTQ2MTEtYjQwMy1kOGM1ZjAxMjRhNzgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkNzQzYzdj LTA3ZTYtNDYxMS1iNDAzLWQ4YzVmMDEyNGE3OC8wL0NDOEFCMUYzRDE3N0I3NzFF MUY3MEVEREU2N0YyNkU1ODU0QzA3MDgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnoBIwDQYJKoZIhvcNAQELBQADggEBABB8qRQui7th1dfz1o+U/jw+FJdij3qr piHl7Z1phKHqbNWUqZ45Re9EHtZOCSOlxePz5M1/oEFFOxChiARAdP/zsV8XLq5/ AdvC/BY9lpLXSpoa4g7XYrsvp+uDf7EVaiSVAKB+iuJ9p16/LkKqRtaKv9xvhajU W1C3CCdKlfxbW7iPe/LeqJv62yrah+Pke/AuBsC6gKqZGYgMfdzyXo5nD8cEiNaa XlMQ+GfOWHJ15uztoCDBIoQVSo4uBpNgbhS7Om38Yhsyj4jsiZOsY9ael3PUgwLU Fh57ZeHM6Ej0wnkIW3x4gUGppsnJKucVw1CqBTjvmrvr+QQOcdJ+qxc= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:51 2024 by rpki-client on console-ams.rpki-client.org